We use cookies to help make our site work properly and to analyze how our site is used. Some are optional, but none contain your personal information, and we don't use any for ads. You can view our cookies policy, manage your cookie preferences, or consent and dismiss this banner by clicking agree:

Agree
ExpressionEngine CMS
Open, Free, Amazing

Thread

This is an archived forum and the content is probably no longer relevant, but is provided here for posterity.

The active forums are here.

Warning - found 20 "PHPBdoor-T" trojans in our 1.6.7 EE folders

July 18, 2012 2:26pm

Subscribe [1]

  • #1 / Jul 18, 2012 2:26pm

    Jaybe Allanson

    13 posts

    I thought I’d just warn everyone that we found a whole swarm (nest? murder?) of “PHPBdoor-T” trojans hiding in our 1.6.7 EE folders on the server. They generally went by the name engine.php or core.php and were scattered all over the place (engine.php was in our themes folder, core.php in the js folder &c.) Obviously we’re going to batten down our security now, but I just wanted to leave a note for everyone else – we wouldn’t have picked this up if we didn’t have an anti-virus installed!

    Trojan: http://www.sophos.com/en-us/threat-center/threat-analyses/viruses-and-spyware/Troj~PHPBdoor-T/detailed-analysis.aspx

.(JavaScript must be enabled to view this email address)

ExpressionEngine News!

#eecms, #events, #releases

© Packet Tide, All Rights Reserved. Legal Notices

Username

Password

Forgot password?
or Register